📃Overview

🔰 Introduction

Deploying a Private Instance of Ellipsis Drive (ED) allows you to run ED on your own (virtual) environment. You can launch ED as a completely stand-alone solution, or launch it on top of your existing file storage, whether that is S3, a classic file server or another form of cloud storage.

ED can be deployed in a geographically distributed cloud environment. That means that you can make your ED deployment perform even if users are distributed around the world.

🔐 Security configuration

ED has various settings that can be configured to improve security. The following list gives a few examples of these possible settings:

List of things that can be configured

1️⃣ 2 factor authentication required to access an account - yes/no

2️⃣ Direct read access to passive (S3 / file server) storage allowed - yes/no

3️⃣ Public and Link Sharing options - enabled/disabled

4️⃣ Access through internet or intranet only

5️⃣ Possible for users to register their own account - yes/no/only for certain domains

6️⃣ Allow creation of permanent access tokens - yes/no

7️⃣ Maximum duration of validity of a token

File storage

ED works as a layer on top of classic file storage (that we call passive storage). This layer takes care of access management, search, interoperability and scalability.

It is important to note that content in passive storage is not altered. ED needs read and write access to this file storage, but will not alter the files itself in any way.

If you have processes that need direct read access to files in passive storage, that is no problem. This can for example be necessary if you need extremely high read speed for some algorithms and want to bypass the API. It can also be needed if you have legacy code that you do not wish to migrate.

ED is compatible with other processes reading the files. But ED is not compatible with other processes having writing access to the storage. You will need to add files via the ED API. Otherwise glitches in the system can occur.

💠 Components

ED consists of 11 containerised components, that are each launched on a (virtual) server running linux Ubuntu 16 or higher. Each component runs in its own docker (virtual) environment.

📶 Scaling

The components marked with '(pool)' can have multiple instances running. Instances can be added or removed from the system when scaling up or down.

Ellipsis Drive is fully compatible with Kubernetes. This means you can use Kubernetes to dynamically scale your instance.

The API and cache database can be placed in any geographic location. They do not need to be near the main location.

An ED consultant will be dedicated to your launch (this service is included in the license fee), so these steps will not have to be taken by the client.

What to do yourself?

In case of a self hosted instance, the Ellipsis Drive software takes care of all internal features. However, some general cloud infrastructure features are inherited from the cloud you are in. You will need to configure these features within your cloud. These include:

Backups. You are recommended to backup your passive storage component as well as the active raster and vector components. Since the active components can be restored from the passive storage, the passive storage backup is the only true requirement.
Cloud armour. To protect yourself against DDOS attacks, we recommend to use some form of cloud armour from your cloud provider.
Load balancing. If your Ellipsis Drive instance is multi region, you will need a load balancer from you cloud provider in order to redirect users to the location nearest to them.
Auto scaling. If you wish to add additional nodes dynamically based on usage, you will need to create scripts for this. Ellipsis Drive will switch resources - that are already allocated to it - on and off based on need, but it will not create new resources.

FAQs

PreviousIntroduction NextDeployment

Last updated 1 month ago